AMENDMENTS TO THE CLAIMS 



1.-21. (Cancelled) 

22. (Currently amended) A method of providing access to a resource of a computer, 
comprising: 

receiving a request from a user to access the resource using a process having a 
process path ; 

accessing data associated with the user stored in a memory in response to the received 
request, the data specifying ono or more resources available to the process 
comprising a process resource access table associated with the user and 
having an ordered list of entries specifying process paths and access rights to 
resources available to processes having the corresponding paths ; 

determining a level of access to the resource for the process by searching the list of 
entries in order to find a first entry matching the process path; and 

providing the process with access rights to the resource specified by the matching 

entry if th e accessed data specifies that the resource is availabl e to th e proc e ss . 

23. (Cancelled) 

24. (Currently amended) The method of claim 22[[3]], wherein the process resource 
access table includes a directory resource path, and wherein the process has access rights to a 
resource designated by the directory resource path. 

25. (Currently amended) The method of claim 24, wherein the process resource 
access table uses a meta symbol in the directory resource path, further comprising: 

substituting the meta symbol in the directory resource path with data defined 
responsive to the process and/or the user. 

26. (Previously presented) The method of claim 25, wherein the meta symbol 
represents an item of information selected from the set consisting of: an identification of a user 
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of the process; a path wildcard; a directory wildcard; a character wildcard; and a portion of a 
name of the resource. 



27. (Previously presented) The method of claim 22, wherein the resource of the 
computer comprises one or more resources from the set consisting of: a data file, an application 
file, a digital device, and access to functionality provided by a second process executing on the 
computer. 

28. (Previously presented) The method of claim 22, wherein the computer is utilized 
by a plurality of users, the plurality of users including the user, further comprising: 

determining an identity of the user; and 

identifying data stored in the memory specifying resources available to processes 
executed by the user having the determined identity. 

29. (Currently amended) A system for providing access to a resource of a computer, 
comprising: 

executing on the compute r , the data comprising a process resource access 
table associated with a user and having an ordered list of entries specifying 
process paths and access rights to resources available to processes having the 
corresponding paths ; 

an interface module for receiving a request from [[a]] the u ser of the computer to 
access the resource using a process having a process path ; and 

a security module for determining a level of access to the resource for the process by 
searching the list of entries in order to find a first entry matching the process 
path, and providing the process with access rights to the resource specified by 
the matching entry if the stored data specifies that the resource is available to 
the process . 

30. (Cancelled) 
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3 1 . (Currently amended) The system of claim [[30]] 29, wherein the process resource 
access table includes a directory resource path, and wherein the process has access rights to a 
resource designated by the directory resource path. 

32. (Currently amended) The system of claim 3 1 , wherein the process resource 
access table uses a meta symbol in the directory resource path, and wherein the security module 
is adapted to: 

substitute the meta symbol in the directory resource path with data defined responsive 
to the process and/or user. 

33. (Previously presented) The system of claim 32, wherein the meta symbol 
represents an item of information selected from the set consisting of: an identification of the 
user; a path wildcard; a directory wildcard; a character wildcard; and a portion of a name of the 
resource. 

34. (Previously presented) The system of claim 29, wherein the resource of the 
computer comprises one or more resources from the set consisting of: a data file, an application 
file, a digital device, and access to functionality provided by a second process executing on the 
computer. 

35. (Previously presented) The system of claim 29, wherein the computer is utilized 
by a plurality of users, the plurality of users including the user, and wherein the security module 
is adapted to: 

determine an identity of the user; and 

identify data stored in the memory specifying resources available to processes 
executed by the user having the determined identity. 

36. (Currently amended) A computer program product having a computer-readable 
medium having embodied thereon program code for providing access to a resource of a 
computer, the program code comprising: 
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an interface module for receiving a request from a user to access the resource using a 
process having a process path ; 

a security module for accessing data stored in a memory, the data comprising a 

process resource access table associated with the user and having an ordered 
list of entries specifying process paths and access rights to resources available 
to processes having the corresponding paths specifying one or more resources 
available to the process ; and 

wherein the security module determines a level of access to the resource for the 

process by searching the list of entries in order to find a first entry matching 
the process path, and provides the process with access rights to the resource 
specified by the matching entry if the stored data specifies that the resource is 
available to the process . 

37. (Cancelled) 

38. (Currently amended) The computer program product of claim 36 [[7]], wherein 
the process resource access table includes a directory resource path, and wherein the process has 
access rights to a resource designated by the directory resource path. 

39. (Currently amended) The computer program product of claim 38, wherein the 
process resource access table represents the directory resource path using a meta symbol, and 
wherein the security module is adapted to: 

substitute the meta symbol in the directory resource path with data defined responsive 
to the process and/or the user. 

40. (Previously presented) The computer program product of claim 39, wherein the 
meta symbol represents an item of information selected from the set consisting of: an 
identification of the user; a path wildcard; a directory wildcard; a character wildcard; and a 
portion of a name of the resource. 
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4 1 . (Previously presented) The computer program product of claim 36, wherein the 
resource of the computer comprises one or more resources from the set consisting of: a data file, 
an application file, a digital device, and access to functionality provided by a second process 
executing on the computer. 

42. (Previously presented) The computer program product of claim 36, wherein the 
computer is utilized by a plurality of users, the plurality of users including the user, and wherein 
the security module is adapted to: 

determine an identity of the user; and 

identify data stored in the memory specifying resources available to processes 
executed by the user having the determined identity. 
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